From: Denis Kenzior <denkenz@gmail.com>
To: KeithG <ys3al35l@gmail.com>
Cc: iwd@lists.linux.dev, James Prestwood <prestwoj@gmail.com>,
Arend Van Spriel <arend.vanspriel@broadcom.com>
Subject: Re: [RFC PATCH v1 0/2] External Auth support
Date: Mon, 26 Aug 2024 10:43:21 -0500 [thread overview]
Message-ID: <93c94dfc-2121-4b7d-b069-8b6ce22290fb@gmail.com> (raw)
In-Reply-To: <CAG17S_Oe0_DnVZW32GrArC9XCQUHh3QEYXxvXatWQiuwV5_QkA@mail.gmail.com>
Hi Keith,
>>
>> iwctl looks like it is trying something:
>> [iwd]# station wlan0 connect deskSAE
>> Type the network passphrase for deskSAE psk.
>> Passphrase: *********
>> [iwd]#
>>
>> but it never connects. I do notice that connman thinks it is up and
>> assigns a 169.254.x.x address
>>
>> Aug 24 11:18:06 pi5 iwd[28085]: src/wiphy.c:wiphy_select_akm() Network
>> is WPA3-Personal...
>> Aug 24 11:18:06 pi5 iwd[28085]: event: connect-info, FullMAC driver:
>> brcmfmac using SAE. Expect EXTERNAL_AUTH
>> Aug 24 11:18:06 pi5 iwd[28085]:
>> src/network.c:network_generate_sae_pt() Generating PT for Group 19
>> Aug 24 11:18:06 pi5 iwd[28085]:
>> src/network.c:network_generate_sae_pt() Generating PT for Group 20
>> Aug 24 11:18:06 pi5 iwd[28085]: src/wiphy.c:wiphy_select_akm() Network
>> is WPA3-Personal...
>> Aug 24 11:18:06 pi5 iwd[28085]: event: connect-info, FullMAC driver:
>> brcmfmac using SAE. Expect EXTERNAL_AUTH
>> Aug 24 11:18:06 pi5 iwd[28085]: src/netdev.c:netdev_cqm_rssi_update()
>> Aug 24 11:18:06 pi5 iwd[28085]: src/wiphy.c:wiphy_radio_work_insert()
>> Inserting work item 4
>> Aug 24 11:18:06 pi5 iwd[28085]: src/wiphy.c:wiphy_radio_work_next()
>> Starting work item 4
>> Aug 24 11:18:06 pi5 iwd[28085]: event: connect-info, ssid: deskSAE,
>> bss: d8:3a:dd:60:a3:0c, signal: -63, load: 0/255
>> Aug 24 11:18:06 pi5 iwd[28085]: event: state, old: autoconnect_full,
>> new: connecting
>> Aug 24 11:18:06 pi5 iwd[28085]: src/scan.c:scan_periodic_stop()
>> Stopping periodic scan for wdev 1
>> Aug 24 11:18:06 pi5 iwd[28085]: CMD_SET_CQM failed: Operation not supported
>> Aug 24 11:18:06 pi5 connmand[635]: Interface wlan0 [ wifi ] state is
>> configuration
>> Aug 24 11:18:06 pi5 iwd[28085]: src/netdev.c:netdev_unicast_notify()
>> Unicast notification External Auth(127)
>> Aug 24 11:18:06 pi5 iwd[28085]: event: connect-info, External Auth to
>> SSID: deskSAE, bssid: d8:3a:dd:60:a3:0c
>> Aug 24 11:18:06 pi5 iwd[28085]:
>> src/netdev.c:netdev_external_auth_sae_tx_authenticate()
>> Aug 24 11:18:06 pi5 iwd[28085]: src/netdev.c:netdev_mlme_notify() MLME
>> notification Frame TX Status(60)
>> Aug 24 11:18:06 pi5 iwd[28085]:
>> src/netdev.c:netdev_external_auth_sae_tx_authenticate()
>> Aug 24 11:18:06 pi5 iwd[28085]: src/netdev.c:netdev_unicast_notify()
>> Unicast notification Frame(59)
>> Aug 24 11:18:06 pi5 iwd[28085]: src/netdev.c:netdev_mlme_notify() MLME
>> notification Frame TX Status(60)
>> Aug 24 11:18:06 pi5 iwd[28085]:
>> src/netdev.c:netdev_external_auth_sae_tx_associate()
>> Aug 24 11:18:06 pi5 iwd[28085]: src/netdev.c:netdev_unicast_notify()
>> Unicast notification Frame(59)
>> Aug 24 11:18:06 pi5 iwd[28085]: src/netdev.c:netdev_external_auth_cb()
>> Failed to send External Auth: Invalid exchange(52)
You're seeing the exact broken behavior I'm seeing. To summarize:
- IWD issues CMD_CONNECT
- Firmware/Kernel sends CMD_EXTERNAL_AUTH to iwd
- IWD performs SAE handshake using CMD_FRAME successfully
- IWD sends CMD_EXTERNAL_AUTH with a success status_code to kernel/firmware
- Kernel/Firmware rplies with error 52, Invalid Exchange.
>> Aug 24 11:18:06 pi5 kernel: ieee80211 phy0:
>> brcmf_cfg80211_external_auth: auth_status iovar failed: ret=-52
>> Aug 24 11:18:46 pi5 connmand[635]: Interface wlan0 [ wifi ] state is ready
>> Aug 24 11:18:46 pi5 connmand[635]: wlan0 {add} address
>> 169.254.242.107/16 label wlan0 family 2
>>
>>
>> Need a log of some sort or is this adequate?
No. We need someone who can tell us how this firmware is supposed to operate.
Perhaps Arend can help?
Regards,
-Denis
next prev parent reply other threads:[~2024-08-26 15:43 UTC|newest]
Thread overview: 24+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-08-23 17:41 [RFC PATCH v1 0/2] External Auth support Denis Kenzior
2024-08-23 17:41 ` [RFC PATCH v1 1/2] netdev: external auth support Denis Kenzior
2024-08-26 12:03 ` James Prestwood
2024-08-23 17:41 ` [RFC PATCH v1 2/2] sae: Allow ability to force Group 19 / Hunt and Peck Denis Kenzior
2024-08-24 0:38 ` [RFC PATCH v1 0/2] External Auth support KeithG
2024-08-24 3:21 ` Denis Kenzior
2024-08-24 16:20 ` KeithG
2024-08-24 23:32 ` KeithG
2024-08-26 15:43 ` Denis Kenzior [this message]
2024-08-26 16:54 ` Arend Van Spriel
2024-09-02 19:32 ` KeithG
2024-09-07 18:43 ` KeithG
2024-09-21 18:58 ` Yuxuan Shui
2024-09-22 3:35 ` Denis Kenzior
[not found] ` <CAG17S_NOs=rdUFsFRk4ZPsC=GER2J7nHikGEw=3AW0SBYHUEfg@mail.gmail.com>
2024-09-22 4:23 ` Denis Kenzior
2024-09-22 6:09 ` Arend Van Spriel
2024-09-22 15:36 ` KeithG
2024-09-22 16:20 ` Arend Van Spriel
2024-09-22 16:29 ` KeithG
2024-10-10 15:38 ` KeithG
2024-12-11 22:59 ` Jeremy Blum
2024-12-12 14:33 ` KeithG
2024-09-22 18:56 ` KeithG
2024-09-22 21:01 ` Denis Kenzior
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=93c94dfc-2121-4b7d-b069-8b6ce22290fb@gmail.com \
--to=denkenz@gmail.com \
--cc=arend.vanspriel@broadcom.com \
--cc=iwd@lists.linux.dev \
--cc=prestwoj@gmail.com \
--cc=ys3al35l@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox